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Abstract 


This memo defines a portion of the Management Information Base (MIB) 
for use with network management protocols. In particular, it 
describes managed objects for modeling the Control And Provisioning 
of Wireless Access Points (CAPWAP) protocol for IEEE 802.11 wireless 
binding. This MIB module is presented as a basis for future work on 
the management of the CAPWAP protocol using the Simple Network 
Management Protocol (SNMP). 


Status of This Memo 


This document is not an Internet Standards Track specification; it is 
published for informational purposes. 


This document is a product of the Internet Engineering Task Force 


(IETF). It represents the consensus of the IETF community. It has 
received public review and has been approved for publication by the 
Internet Engineering Steering Group (IESG). Not all documents 


approved by the IESG are a candidate for any level of Internet 
Standard; see Section 2 of RFC 5741. 


Information about the current status of this document, any errata, 


and how to provide feedback on it may be obtained at 
http://www.rfc-editor.org/info/rfc5834. 
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Provisions Relating to IETF Documents 
(http://trustee.ietf.org/license-info) in effect on the date of 
publication of this document. Please review these documents 
carefully, as they describe your rights and restrictions with respect 
to this document. Code Components extracted from this document must 
include Simplified BSD License text as described in Section 4.e of 
the Trust Legal Provisions and are provided without warranty as 
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1. Introduction 


The CAPWAP protocol [RFC5415] defines a standard, interoperable 
protocol, which enables an Access Controller (AC) to manage a 
collection of Wireless Termination Points (WIPs).  CAPWAP supports 
the use of various wireless technologies by the WTPs, with one 
Specified in the CAPWAP Protocol Binding for IEEE 802.11 [RFC5416]. 


This document defines a MIB module that can be used to manage CAPWAP 
implementations for IEEE 802.11 wireless binding. This MIB module 
covers both configuration for Wireless Local Area Network (WLAN) and 
a way to reuse the IEEE 802.11 MIB module [IEEE.802-11.2007]. It is 
presented as a basis for future work on the SNMP management of the 
CAPWAP protocol. 


2. The Internet-Standard Management Framework 


For a detailed overview of the documents that describe the current 
Internet-Standard Management Framework, please refer to section 7 of 
RFC 3410 [RFC3410]. 


Managed objects are accessed via a virtual information store, termed 
the Management Information Base or MIB. MIB objects are generally 
accessed through the Simple Network Management Protocol (SNMP). 
Objects in the MIB are defined using the mechanisms defined in the 
Structure of Management Information (SMI). This memo specifies a MIB 
module that is compliant to the SMIv2, which is described in STD 58, 
RFC 2578 [RFC2578], STD 58, RFC 2579 [RFC2579], and STD 58, RFC 2580 
[RFC2580]. 


3. Terminology 


This document uses terminology from the CAPWAP protocol specification 
[RFC5415], the CAPWAP Protocol Binding for IEEE 802.11 [RFC5416], and 
the CAPWAP Protocol Base MIB [RFC5833]. 


Access Controller (AC): The network entity that provides WTP access 
to the network infrastructure in the data plane, control plane, 
management plane, or a combination therein. 


Wireless Termination Point (WTP): The physical or network entity that 


contains an RF antenna and wireless physical layer (PHY) to transmit 
and receive station traffic for wireless access networks. 
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Control And Provisioning of Wireless Access Points (CAPWAP): It is a 
generic protocol defining AC and WTP control and data plane 
communication via a CAPWAP protocol transport mechanism.  CAPWAP 
control messages, and optionally CAPWAP data messages, are secured 
using Datagram Transport Layer Security (DTLS) [RFC4347]. 


CAPWAP Control Channel: A bi-directional flow defined by the AC IP 
Address, WTP IP Address, AC control port, WTP control port, and the 
transport-layer protocol (UDP or UDP-Lite) over which CAPWAP control 
packets are sent and received. 


CAPWAP Data Channel: A bi-directional flow defined by the AC IP 
Address, WTP IP Address, AC data port, WTP data port, and the 
transport-layer protocol (UDP or UDP-Lite) over which CAPWAP data 
packets are sent and received. 


Station (STA): A device that contains an interface to a wireless 
medium (WM). 


Split and Local MAC: The CAPWAP protocol supports two modes of 
operation: Split and Local MAC (medium access control). In Split MAC 
mode, all Layer 2 wireless data and management frames are 
encapsulated via the CAPWAP protocol and exchanged between the AC and 
the WTPs. The Local MAC mode of operation allows the data frames to 
be either locally bridged or tunneled as 802.3 frames. 


Wireless Binding: The CAPWAP protocol is independent of a specific 
WTP radio technology, as well its associated wireless link layer 
protocol. Elements of the CAPWAP protocol are designed to 
accommodate the specific needs of each wireless technology in a 
standard way. Implementation of the CAPWAP protocol for a particular 
wireless technology MUST define a binding protocol for it, e.g., the 
binding for IEEE 802.11, provided in [RFC5416]. 


Wireless Local Area Network (WLAN): A WLAN refers to a logical 
component instantiated on a WIP device. A single physical WTP MAY 
operate a number of WLANs. Each Basic Service Set Identifier (BSSID) 
and its constituent wireless terminal radios are denoted as a 
distinct WLAN on a physical WTP. To support a physical WTP with 
multiple WLANs is an important feature for CAPWAP protocol's 802.11 
binding, and it is also for MIB module design. 


Wireless Binding MIB Module: Other Standards Development 
Organizations (SDOs), such as IEEE, already defined MIB modules for 
Specific wireless technologies, e.g., the IEEE 802.11 MIB module 
[IEEE.802-11.2007]. Such MIB modules are called wireless binding MIB 
modules. 
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CAPWAP Protocol Wireless Binding MIB Module: It is a MIB module 
corresponding to the CAPWAP Protocol Binding for a wireless binding. 
Sometimes, not all the technology-specific message elements in a 
CAPWAP binding protocol have MIB objects defined by other SDOs. For 
example, the protocol of [RFC5416] defines WLAN conception. Also, 
Local or Split MAC modes could be specified for a WLAN. The MAC mode 
for a WLAN is not in the scope of IEEE 802.11 [IEEE.802-11.2007]. In 
such cases, in addition to the existing wireless binding MIB modules 
defined by other SDOs, a CAPWAP protocol wireless binding MIB module 
is required to be defined for a wireless binding. 


4. Conventions 


The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", 
"SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this 
document are to be interpreted as described in RFC 2119 [RFC2119]. 


5. Overview 
5.1. WLAN Profile 


A WLAN profile stores configuration parameters such as MAC type and 
tunnel mode for a WLAN. Each WLAN profile is identified by a profile 
identifier. The operator needs to create WLAN profiles before WTPs 
connect to the AC. To provide WLAN service, the operator SHOULD bind 
WLAN profiles to a WIP Virtual Radio Interface that corresponds to a 
PHY radio. During the binding operation, the AC MUST select an 
unused WLAN ID between 1 and 16 [RFC5416]. For example, to bind one 
more WLAN profile to a radio that has been bound with a WLAN profile, 
the AC SHOULD allocate WLAN ID 2 to the radio. Although the maximum 
value of a WLAN ID is 16, the operator could configure more than 16 
WLAN Profiles on the AC. 


5.2. Requirements and Constraints 


The IEEE 802.11 MIB module [IEEE.802-11.2007] already defines MIB 
objects for most IEEE 802.11 Message Elements in the CAPWAP Protocol 
Binding for IEEE 802.11 [RFC5416]. As a CAPWAP protocol 802.11 
binding MIB module, the CAPWAP-DOT11-MIB module MUST be able to reuse 
such MIB objects in the IEEE 802.11 MIB module and support functions 
(such as MAC mode for WLAN in the [RFC5416]) that are not in the 
Scope of IEEE 802.11 standard. The CAPWAP-DOT11-MIB module MUST 
support such functions. 


In summary, the CAPWAP-DOT11-MIB module needs to support: 


- Reuse of wireless binding MIB modules in the IEEE 802.11 standard; 
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- Centralized management and configuration of WLAN profiles on the 
AC; 


- Configuration of a MAC type and tunnel mode for a specific WLAN 
profile. 


5.3. Mechanism of Reusing Wireless Binding MIB Module 


In the IEEE 802.11 MIB module, the MIB tables such as 
dotllAuthenticationAlgorithmsTable are able to support WLAN 
configuration (such as authentication algorithm), and these tables 
use the ifIndex as the index which works well in the autonomous WLAN 
architecture. 


Reuse of such wireless binding MIB modules is very important to 
centralized WLAN architectures. The key point is to abstract a WLAN 
profile as a WLAN Profile Interface on the AC, which could be 
identified by an ifIndex. The MIB objects in the IEEE 802.11 MIB 
module which are associated with this interface can be used to 
configure WLAN parameters for the WLAN, such as authentication 
algorithm. With the ifIndex of a WLAN Profile Interface, the AC is 
able to reuse the IEEE 802.11 MIB module. 


In the CAPWAP-BASE-MIB module, each PHY radio is identified by a WTP 
ID and a radio ID, and has a corresponding WTP Virtual Radio 
Interface on the AC. The IEEE 802.11 MIB module associated with this 
interface can be used to configure IEEE 802.11 wireless binding 
parameters for the radio such as RTS Threshold. A WLAN Basic Service 
Set (BSS) Interface, created by binding a WLAN to a WTP Virtual Radio 
Interface, is used for data forwarding. 


6. Structure of MIB Module 


The MIB objects are derived from the CAPWAP protocol binding for IEEE 
802.11 document [RFC5416]. 


capwapDotlliWlanTable 
The table allows the operator to display and configure WLAN 
profiles, such as specifying the MAC type and tunnel mode for a 


WLAN. Also, it helps the AC to configure a WLAN through the IEEE 
802.11 MIB module. 
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capwapDot11WlanBindTable 


The table provides a way to bind WLAN profiles to a WIP Virtual 
Radio Interface, which has a corresponding PHY radio. A binding 
operation dynamically creates a WLAN BSS Interface, which is used 
for data forwarding. 


7. Relationship to Other MIB Modules 
7.1. Relationship to SNMPv2-MIB Module 


The CAPWAP-DOT11-MIB module does not duplicate the objects of the 
‘system’ group in the SNMPv2-MIB [RFC3418] that is defined as being 
mandatory for all systems, and the objects apply to the entity as a 
whole. The 'system' group provides identification of the management 
entity and certain other system-wide data. 


7.2. Relationship to IF-MIB Module 


The Interfaces Group [RFC2863] defines generic managed objects for 
managing interfaces. This memo contains the media-specific 
extensions to the Interfaces Group for managing WLAN that are modeled 
as interfaces. 


Each WLAN profile corresponds to a WLAN Profile Interface on the AC. 
The interface MUST be modeled as an ifEntry, and ifEntry objects such 
as ifIndex, ifDescr, ifName, and ifAlias are to be used as per 
[RFC2863]. The WLAN Profile Interface provides a way to configure 
IEEE 802.11 parameters for a specific WLAN and reuse the IEEE 802.11 
MIB module. 


To provide data forwarding service, the AC dynamically creates WLAN 
BSS Interfaces. A WLAN BSS Interface MUST be modeled as an ifEntry, 
and ifEntry objects such as ifIndex, ifDescr, ifName, and ifAlias are 
to be used as per [RFC2863]. The interface enables a single physical 
WTP to support multiple WLANs. 


Also, the AC MUST have a mechanism that preserves the value of the 
ifIndexes (of both the WLAN Profile Interfaces and the WLAN BSS 
Interfaces) in the ifTable at AC reboot. 


7.3. Relationship to CAPWAP-BASE-MIB Module 
The CAPWAP-BASE-MIB module provides a way to manage and control WTP 
and radio objects. Especially, it provides the WTP Virtual Radio 


Interface mechanism to enable the AC to reuse the IEEE 802.11 MIB 
module. With this mechanism, an operator could configure an IEEE 
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802.11 radio's parameters and view the radio's traffic statistics on 
the AC. Based on the CAPWAP-BASE-MIB module, the CAPWAP-DOT11-MIB 
module provides more WLAN information. 


7.4. Relationship to MIB Module in the IEEE 802.11 Standard 


With the ifIndex of WLAN Profile Interface and WLAN BSS Interface, 
the MIB module is able to reuse the IEEE 802.11 MIB module 
[IEEE.802-11.2007]. The CAPWAP-DOT11-MIB module does not duplicate 
those objects in the IEEE 802.11 MIB module. 


The CAPWAP Protocol Binding for IEEE 802.11 [RFC5416] involves some 
of the MIB objects defined in the IEEE 802.11 standard. Although 
CAPWAP-DOT11-MIB module uses it [RFC5416] as a reference, it could 
reuse all the MIB objects in the IEEE 802.11 standard , and is not 
limited by the scope of CAPWAP Protocol Binding for IEEE 802.11. 


7.5. MIB Modules Required for IMPORTS 
The following MIB modules are required for IMPORTS: SNMPv2-SMI 
[RFC2578], SNMPv2-TC [RFC2579], SNMPv2-CONF [RFC2580], IF-MIB 
[RFC2863], and CAPWAP-BASE-MIB [RFC5833]. 
8. Example of CAPWAP-DOT11-MIB Module Usage 
1) Create a WTP profile. 
Suppose the WTP's base MAC address is '00:01:01:01:01:00'. 
Creates a WTP profile for it through the capwapBaseWtpProfileTable 
[RFC5833] as follows: 


In capwapBaseWtpProfileTable 
{ 


capwapBaseWtpProfileId = 1, 
capwapBaseWtpProfileName = 'WTP Profile 123456’, 
capwapBaseWtpProfileWtpMacAddress = '00:01:01:01:01:00', 
capwapBaseWtpProfileWTPModelNumber = 'WTP123', 
capwapBaseWtpProfileWtpName = 'WTP 123456', 
capwapBaseWtpProfileWtpLocation = 'office', 
capwapBaseWtpProfileWtpStaticIpEnable = true(1), 
capwapBaseWtpProfileWtpStaticIpType = ipv4(1), 
capwapBaseWtpProfileWtpStaticlpAddress = '192.0.2.10', 
capwapBaseWtpProfileWtpNetmask &eots5y:2552255.04 > 
capwapBaseWtpProfileWtpGateway = T192.0.2:1^, 
capwapBaseWtpProfileWtpFallbackEnable = true(l1), 
capwapBaseWtpProfileWtpEchoInterval = 30, 
capwapBaseWtpProfileWtpIdleTimeout = 300, 
capwapBaseWtpProfileWtpMaxDiscoveryInterval = 20, 
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capwapBaseWtpProfileWtpReportInterval = 120, 
capwapBaseWtpProfileWtpStatisticsTimer = 120, 
capwapBaseWtpProfileWtpEcnSupport = limited(0) 


} 


Suppose the WIP with model number 'WTP123' has one PHY radio and 
this PHY radio is identified by ID 1. The creation of this WTP 
profile triggers the AC to automatically create a WTP Virtual 
Radio Interface and add a new row object to the 
capwapBaseWirelessBindingTable without manual intervention. 
Suppose the ifIndex of the WTP Virtual Radio Interface is 10. The 
following information is stored in the 
capwapBaseWirelessBindingTable. 


In capwapBaseWirelessBindingTable 


( 


capwapBaseWtpProfileId = 1, 
capwapBaseWirelessBindingRadiold = 1, 
capwapBaseWirelessBindingVirtualRadioIfIndex = 10, 


| 
Q 
[9] 
ct 
= 
H 
N 


capwapBaseWirelessBindingType 


} 


The WTP Virtual Radio Interfaces on the AC correspond to the PHY 
radios on the WTP. The WTP Virtual Radio Interface is modeled by 
ifTable [RFC2863]. 


In ifTable 
{ 
ifIndex = 10, 
ifDescr = ‘WTP Virtual Radio Interface’, 
ifType = 254, 
ifMtu = 0, 
ifSpeed = 0, 
ifPhysAddress = '00:00:00:00:00:00', 
ifAdminStatus = true(1), 
ifOperStatus = false(0), 
ifLastChange = 0, 
ifInOctets = 0, 
ifInUcastPkts = 0, 
ifInDiscards = 0, 
ifInErrors = 0, 
ifInUnknownProtos = 0, 
ifOutOctets = 0, 
ifOutUcastPkts = 0, 
ifOutDiscards = 0, 
ifOutErrors = 0 
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Query the ifIndexes of WTP Virtual Radio Interfaces. 


Before configuring PHY radios, the operator needs to get the 
ifIndexes of WTP Virtual Radio Interfaces corresponding to the PHY 
radios. 


As the capwapBaseWirelessBindingTable already stores the mappings 
between PHY radios (Radio IDs) and the ifIndexes of WTP Virtual 
Radio Interfaces, the operator can get the ifIndex information by 
querying this table. Such a query operation SHOULD run from radio 
ID 1 to radio ID 31 (according to [RFC5415]), and stop when an 
invalid iflndex value (0) is returned. 


This example uses capwapBaseWtpProfileId = 1 and 
capwapBaseWirelessBindingRadioId = 1 as inputs to query the 
capwapBaseWirelessBindingTable, and gets 
capwapBaseWirelessBindingVirtualRadioIfIndex - 10. Then it uses 


capwapBaseWtpProfileld - 1 and capwapBaseWirelessBindingRadioId - 
2, and gets an invalid ifIndex value (0), so the query operation 
ends. This method gets not only the ifIndexes of WIP Virtual 
Radio Interfaces, but also the numbers of PHY radios. Besides 
checking whether the ifIndex value is valid, the operator SHOULD 
check whether the capwapBaseWirelessBindingType is the desired 
binding type. 


Configure IEEE 802.11 parameters for a WTP Virtual Radio Interface 


This configuration is made on the AC through the IEEE 802.11 MIB 
module. 


The following shows an example of configuring parameters for a WTP 
Virtual Radio Interface with ifIndex 10 through the 
dotlilOperationTable [IEEE.802-11.2007]. 


In dotllOperationTable 
{ 


ifIndex = 10, 
dot11MACAddress = '00:00:00:00:00:00’, 
dot11RTSThreshold = 2347, 
dot11ShortRetryLimit = 7, 
dotllLongRetryLimit = 4, 
dotllFragmentationThreshold = 256, 
dot11MaxTransmitMSDULifetime = 512, 
dot11MaxReceiveLifetime = 512, 
dotlliManufacturerID = 'capwap', 
dotllProductID = 'capwap', 
dot11CAPLimit = 2, 
dot11HCCWmin = 0, 
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dot11HCCWmax = 0, 
dot11HCCAIFSN = 1, 
dot 11ADDBAResponseTimeout = 1, 
dot11ADDTSResponseTimeout zd 
dot11ChannelUtilizationBeaconInterval = 50, 
dot11ScheduleTimeout = 10, 
dot11DLSResponseTimeout = 10, 
dot11QAPMissingAckRetryLimit = 1, 
dotllEDCAAveragingPeriod = 5 


} 
Configure a WLAN Profile. 


WLAN configuration is made on the AC through the CAPWAP-DOT11-MIB 
module, and IEEE 802.11 MIB module. 


The first step is to create a WLAN Profile Interface through the 
CAPWAP-DOT11-MIB module on the AC. 


For example, when you configure a WLAN profile that is identified 
by capwapDotllWlanProfileId 1, the capwapDotllWlanTable creates 
the following row object for it. 


In capwapDotlliWlanTable 

{ 
capwapDot11WlanProfileld = 1, 
capwapDot11WlanProfilelIfIndex = 20, 
capwapDot11WlanMacType splitMAC (2), 
capwapDot11WlanTunnelMode dot3Tunnel (2), 
capwapDot11WlanRowStatus = createAndGo (4) 


} 


The creation of a row object triggers the AC to automatically 
create a WLAN Profile Interface and it is identified by ifIndex 20 
without manual intervention. 


A WLAN Profile Interface MUST be modeled as an ifEntry on the AC 
that provides appropriate interface information. The 
capwapDot11WlanTable stores the mappings between 
capwapDot11WlanProfileIds and the ifIndexes of WLAN Profile 
Interfaces. 


In ifTable 
{ 
ifIndex = 20, 
ifDescr = 'WLAN Profile Interface’, 
ifType = 252, 
ifMtu - 0, 
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ifSpeed - 0, 

ifPhysAddress = '00:00:00:00:00:00’, 
ifAdminStatus = true(1), 
ifOperStatus = true(1), 
ifLastChange = 0, 

ifInOctets = 
ifInUcastPkts = 
ifInDiscards = 
ifInErrors = 
ifInUnknownProtos = 
ifOutOctets = 
ifOutUcastPkts = 
ifOutDiscards = 
ifOutErrors = 


LES EE 


` 


PE 


` 


O DOGO OOO O 
`~ 


} 


The second step is to configure WLAN parameters for the WLAN 
Profile Interface through the IEEE 802.11 MIB module on the AC. 


The following example configures an authentication algorithm for a 
WLAN. 


In dotllAuthenticationAlgorithmsTable 
{ 


ifIndex = 20, 
dotllAuthenticationAlgorithmsIndex = 1, 
dotllAuthenticationAlgorithm = Shared Key(2), 
dotilAuthenticationAlgorithmsEnable = true(1) 


Here, ifIndex 20 identifies the WLAN Profile Interface, and the 
index of the configured authentication algorithm is 1. 


5) Bind WLAN Profiles to a WTP radio. 


On the AC, the capwapDotllWlanBindTable in the CAPWAP-DOT11-MIB 
stores the bindings between WLAN profiles(identified by 
capwapDotliWlanProfileld) and WIP Virtual Radio Interfaces 
(identified by the ifIndex). 


For example, after the operator binds a WLAN profile with 
capwapDot11WlanProfileId 1 to WIP Virtual Radio Interface with 
ifIndex 10, the capwapDot11WlanBindTable creates the following row 
object. 
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In capwapDot11WlanBindTable 
{ 


ifIndex = 10, 
capwapDotllWlanProfileTld = 1, 
capwapDot11WlanBindBssIfIndex = 30, 


capwapDot11WlanBindRowStatus createAndGo (4) 


} 


If the capwapDot11WlanMacType of the WLAN is splitMAC(2), the 
creation of the row object in the capwapDot11WlanBindTable 
triggers the AC to automatically create a WLAN BSS Interface 
identified by ifIndex 30 without manual intervention. 


The WLAN BSS Interface MUST be modeled as an ifEntry on the AC, 
which provides appropriate interface information. The 
capwapDotliWlanBindTable stores the mappings among the ifIndex of 
a WTP Virtual Radio Interface, WLAN profile ID, WLAN ID, and the 
ifIndex of a WLAN BSS Interface. 


Get the current configuration status report from the WTP to the 
AC. 


Before a WTP that has joined the AC gets configuration from the 
AC, it needs to report its current configuration status by sending 
a configuration status request message to the AC, which uses the 
message to update corresponding MIB objects on the AC. For 
example, for ifIndex 10 (which identifies a WLAN Virtual Radio 
Interface), its ifOperStatus in the ifTable is updated according 
to the current radio operational status in the CAPWAP message 
[RFC5415]. 


Query WTP and radio statistical data. 


After WIPs start to run, the operator could query WTP and radio 
statistics data through the CAPWAP-BASE-MIB and CAPWAP-DOT11-MIB 
modules. For example, through the dotllCountersTable 
[IEEE.802-11.2007], the operator could query counter data of a 
radio that is identified by the ifIndex of the corresponding WLAN 
Virtual Radio Interface. 


Query other statistical data. 
The operator could query the configuration of a WLAN through the 
dotllAuthenticationAlgorithmsTable [IEEE.802-11.2007] and the 


statistical data of a WLAN BSS Interface through the ifTable 
[RFC2863]. 
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9. Definitions 


CAPWAP-DOT11-MIB DEFINITIONS 


IMPORTS 


::= BEGIN 


RowStatus, TEXTUAL-CONVENTION 


FROM SNMPv2-TC 


OBJECT-GROUP, MODULE-COMPLIANCE 


FROM SNMPv2-CONF 


MODULE-IDENTITY, OBJECT-TYPE, mib-2, Unsigned32 


FROM SNMPv2-SMI 
iflndex, InterfaceIndex 
FROM IF-MIB 


CapwapBaseMacTypeTC, CapwapBaseTunnelModeTC 


FROM CAPWAP-BASE-MIB; 


capwapDot11MIB MODULE-IDENTITY 
LAST-UPDATED "201004300000 


VAL 


-- 30 April 2010 


May 2010 


ORGANIZATION "IETF Control And Provisioning of Wireless Access 
Points (CAPWAP) Working Group 
http://www.ietf.org/html.charters/capwap-charter.html" 


CONTACT-INFO 


"General Discussion: capwap@frascone.com 
To Subscribe: http://lists.frascone.com/mailman/listinfo/capwap 
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All rights reserved. 


in source and binary forms, with or 
is permitted pursuant to, and subject 
the Simplified BSD License 
-c of the IETF Trust's Legal Provisions 


Relating to IETF Documents 
(http://trustee.ietf.org/license-info). 


This version of this MIB module is part of RFC 5834; 


see the RFC itself for 


full legal notices. 


This MIB module contains managed object definitions for 
CAPWAP Protocol binding for IEEE 802.11." 


REVISION 

DESCRIPTION 
"Initial version, 

{ mib-2 195 } 


"2010043000002" 


publi 


—— Textual conventions 


CapwapDot11WlanIdTc 
DISPLAY-HINT "d" 
STATUS current 
DESCRIPTION 

"Represents the unique 
Network (WLAN)." 
SYNTAX Unsigned32 


(1. 


CapwapDotlliWlanlIdProfileTC 
DISPLAY-HINT "d" 
STATUS current 
DESCRIPTION 

"Represents the unique 
SYNTAX Unsigned32 (1. 


-- Top level components of thi 
Scalars 


-- Tables, 


Shi, et al. 


shed as RFC 5834" 


TEXTUAL-CONVENTION 


identifier of a Wireless Local Area 
.16) 


TEXTUAL-CONVENTION 


identifier of a WLAN profile." 
.512) 


S MIB module 
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capwapDotllObjects OBJECT IDENTIFIER 
::— 1 capwapDotllMIB 1 } 

-- Conformance 

capwapDotllConformance OBJECT IDENTIFIER 
::= { capwapDotllMIB 2 } 


-- capwapDotllWlanTable Table 


capwapDotliWlanTable OBJECT-TYPE 


SYNTAX SEQUENCE OF CapwapDotllWlanEntry 
MAX-ACCESS  not-accessible 

STATUS current 

DESCRIPTION 


"A table that allows the operator to display and configure 
WLAN profiles, such as specifying the MAC type and tunnel mode 
for a WLAN. Also, it helps the AC to configure a WLAN through 
the IEEE 802.11 MIB module. 
Values of all objects in this table are persistent at 
restart/reboot." 

::= ( capwapDotllObjects 1 ) 


capwapDotllWlanEntry OBJECT-TYPE 


SYNTAX CapwapDot11WlanEntry 
MAX-ACCESS not-accessible 
STATUS current 

DESCRIPTION 


"A set of objects that stores the settings of a WLAN profile." 
INDEX { capwapDotllWlanProfileId } 
:= { capwapDotllWlanTable 1 } 


CapwapDotllWlanEntry ::= 


SEQUENCE { 
capwapDotliWlanProfileId CapwapDotliWlanIdProfileTC, 
capwapDotllWlanProfilelfIndex InterfaceIndex, 
capwapDot11WlanMacType CapwapBaseMacTypeTC, 
capwapDot11WlanTunnelMode CapwapBaseTunnelModeTC, 
capwapDot11WlanRowStatus RowStatus 


} 


capwapDot11WlanProfileId OBJECT-TYPE 


SYNTAX CapwapDotlliWlanIdProfileTC 
MAX-ACCESS  not-accessible 

STATUS current 

DESCRIPTION 


"Represents the identifier of a WLAN profile that has a 
corresponding capwapDotllWlanProfileIfIndex." 
::— 1 capwapDotllWlanEntry 1 } 
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capwapDot11WlanProfileIfIndex OBJECT-TYPE 


SYNTAX InterfaceIndex 
MAX-ACCESS read-only 
STATUS current 
DESCRIPTION 


"Represents the index value that uniquely identifies a 

WLAN Profile Interface. The interface identified by a 

particular value of this index is the same interface as 

identified by the same value of the ifIndex. 

The creation of a row object in the capwapDotllWlanTable 

triggers the AC to automatically create an WLAN Profile 

Interface identified by an ifIndex without manual 

intervention. 

Most MIB tables in the IEEE 802.11 MIB module 

[IEEE.802-11.2007] use an ifIndex to identify an interface 

to facilitate the configuration and maintenance, for example, 

dotllAuthenticationAlgorithmsTable. 

Using the ifIndex of a WLAN Profile Interface, the Operator 

could configure a WLAN through the IEEE 802.11 MIB module." 
::= ( capwapDotllWlanEntry 2 } 


capwapDotllWlanMacType OBJECT-TYPE 


SYNTAX CapwapBaseMacTypeTC 
MAX-ACCESS  read-create 

STATUS current 

DESCRIPTION 


"Represents whether the WTP SHOULD support the WLAN in 
Local or Split MAC modes." 

REFERENCE 
"Section 6.1 of CAPWAP Protocol Binding for IEEE 802.11, 
RFC 5416." 

::= ( capwapDotllWlanEntry 3 } 


capwapDotlliWlanTunnelMode OBJECT-TYPE 


SYNTAX CapwapBaseTunnelModeTC 
MAX-ACCESS  read-create 

STATUS current 

DESCRIPTION 


"Represents the frame tunneling mode to be used for IEEE 802.11 
data frames from all stations associated with the WLAN. 
Bits are exclusive with each other for a specific WLAN profile, 
and only one tunnel mode could be configured. 
If the operator set more than one bit, the value of the 
Response-PDU's error-status field is set to 'wrongValue', 
and the value of its error-index field is set to the index of 
the failed variable binding." 

REFERENCE 
"Section 6.1 of CAPWAP Protocol Binding for IEEE 802.11, 
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RFC 5416." 
::— 1 capwapDotllWlanEntry 4 } 


capwapDotlliWlanRowStatus OBJECT-TYPE 


SYNTAX RowStatus 
MAX-ACCESS  read-create 
STATUS current 
DESCRIPTION 


"This variable is used to create, modify, and/or delete a row 
in this table. 
All the objects in a row can be modified only when the value 
of this object in the corresponding conceptual row is not 
'active'. Thus, to modify one or more of the objects in 
this conceptual row: 

a. change the row status to 'notInService', 

b. change the values of the row 

C. change the row status to 'active' 
The capwapDot11WlanRowStatus may be changed to ’active’ 
if all the managed objects in the conceptual row with 
MAX-ACCESS read-create have been assigned valid values. 


When the operator deletes a WLAN profile, the AC SHOULD 
check whether the WLAN profile is bound with a radio. 
If yes, the value of the Response-PDU's error-status field 
is set to 'inconsistentValue', and the value of its 
error-index field is set to the index of the failed variable 
binding. If not, the row object could be deleted." 

::— 1 capwapDotllWlanEntry 5 } 


-- End of capwapDotllWlanTable Table 


-- capwapDotllWlanBindTable Table 


capwapDot11WlanBindTable OBJECT-TYPE 


SYNTAX SEQUENCE OF CapwapDot11WlanBindEntry 
MAX-ACCESS not-accessible 

STATUS current 

DESCRIPTION 


"A table that stores bindings between WLAN profiles 
(identified by capwapDotllWlanProfileId) and WTP Virtual Radio 
Interfaces. The WIP Virtual Radio Interfaces on the AC 
correspond to physical layer (PHY) radios on the WTPs. 
It also stores the mappings between WLAN IDs and WLAN 
Basic Service Set (BSS) Interfaces. 
Values of all objects in this table are persistent at 
restart/reboot." 
REFERENCE 
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"Section 6.1 of CAPWAP Protocol Binding for IEEE 802.11, 
RFC 5416." 
::= { capwapDotllObjects 2 } 


capwapDot11WlanBindEntry OBJECT-TYPE 


SYNTAX CapwapDot11WlanBindEntry 
MAX-ACCESS not-accessible 

STATUS current 

DESCRIPTION 


"A set of objects that stores the binding of a WLAN profile 
to a WIP Virtual Radio Interface. It also stores the mapping 
between WLAN ID and WLAN BSS Interface. 
The INDEX object ifIndex is the ifIndex of a WIP Virtual 
Radio Interface." 

INDEX { ifIndex, capwapDotllWlanProfileId } 

::= { capwapDot11WlanBindTable 1 } 


CapwapDot11WlanBindEntry ::= 


SEQUENCE { 
capwapDot11WlanBindWlanId CapwapDot11WlanIdTc, 
capwapDot11WlanBindBssIfIndex InterfaceIndex, 
capwapDot11WlanBindRowStatus RowStatus 


} 


capwapDot11WlanBindWlanId OBJECT-TYPE 


SYNTAX CapwapDot11WlanIdTC 
MAX-ACCESS read-only 

STATUS current 

DESCRIPTION 


"Represents the WLAN ID of a WLAN. 
During a binding operation, the AC MUST select an unused 
WLAN ID from between 1 and 16 [RFC5416]. For example, to bind 
another WLAN profile to a radio that has been bound with 
a WLAN profile, WLAN ID 2 should be assigned." 
REFERENCE 
"Section 6.1 of CAPWAP Protocol Binding for IEEE 802.11, 
RFC 5416." 
::= 1 capwapDotllWlanBindEntry 1 } 


capwapDot11WlanBindBssIfIndex OBJECT-TYPE 


SYNTAX InterfaceIndex 
MAX-ACCESS read-only 
STATUS current 
DESCRIPTION 


"Represents the index value that uniquely identifies a 
WLAN BSS Interface. The interface identified by a 
particular value of this index is the same interface as 
identified by the same value of the ifIndex. 
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The ifIndex here is for a WLAN BSS Interface. 
The creation of a row object in the capwapDot11WlanBindTable 
triggers the AC to automatically create a WLAN BSS Interface 
identified by an ifIndex without manual intervention. 
The PHY address of the capwapDot11WlanBindBssIfIndex is the 
BSSID. While manufacturers are free to assign BSSIDs by using 
any arbitrary mechanism, it is advised that where possible the 
BSSIDs are assigned as a contiguous block. 
When assigned as a block, implementations can still assign 
any of the available BSSIDs to any WLAN. One possible method 
is for the WTP to assign the address using the following 
algorithm: base BSSID address + WLAN ID." 

REFERENCE 
"Section 2.4 of CAPWAP Protocol Binding for IEEE 802.11, 
RFC 5416." 

::= 1 capwapDot11WlanBindEntry 2 } 


capwapDot11WlanBindRowStatus OBJECT-TYPE 


SYNTAX RowStatus 
MAX-ACCESS  read-create 
STATUS current 
DESCRIPTION 


"This variable is used to create, modify, and/or delete a row 
in this table. 
All the objects in a row can be modified only when the value 
of this object in the corresponding conceptual row is not 
‘active’. Thus, to modify one or more of the objects in 
this conceptual row: 

a. change the row status to 'notInService', 

b. change the values of the row 

C. change the row status to 'active'" 

::= ( capwapDotllWlanBindEntry 3 } 


-- End of capwapDot11WlanBindTable Table 


-- Module compliance 


capwapDotllGroups OBJECT IDENTIFIER 
::— 1 capwapDotllConformance 1 } 


capwapDot11Compliances OBJECT IDENTIFIER 
::= ( capwapDotllConformance 2 } 


capwapDot11Compliance MODULE-COMPLIANCE 
STATUS current 
DESCRIPTION 
"Describes the requirements for conformance to the 
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CAPWAP-DOT11-MIB module." 


MODULE -- this module 
MANDATORY-GROUPS | 
capwapDot11WlanGroup, 
capwapDot11WlanBindGroup 


} 
:= ( capwapDotllCompliances 1 } 


capwapDot11WlanGroup OBJECT-GROUP 
OBJECTS { 
capwapDotllWlanProfilelfIndex, 
capwapDot11WlanMacType, 
capwapDot11WlanTunnelMode, 
capwapDot11WlanRowStatus 
} 
STATUS current 
DESCRIPTION 
"A collection of objects that is used to configure 
the properties of a WLAN profile." 
::— 1 capwapDotllGroups 1 } 


capwapDot11WlanBindGroup OBJECT-GROUP 
OBJECTS { 
capwapDotll1WlanBindWlanId, 
capwapDot11WlanBindBssIfIndex, 
capwapDot11WlanBindRowStatus 
} 
STATUS current 
DESCRIPTION 
"A collection of objects that is used to bind the 
WLAN profiles with a radio." 
::= 1 capwapDot11Groups 2 } 


END 
10. Security Considerations 


There are a number of management objects defined in this MIB module 
with a MAX-ACCESS clause of read-write and/or read-create. Such 
objects MAY be considered sensitive or vulnerable in some network 
environments. The support for SET operations in a non-secure 
environment without proper protection can have a negative effect on 
network operations. The following are the tables and objects and 
their sensitivity/vulnerability: 
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11. 


11 


11 


12: 


o Unauthorized changes to the capwapDotllWlanTable and 
capwapDot11WlanBindTable MAY disrupt allocation of resources in 
the network, and also change the behavior of the WLAN system such 
as MAC type. 


SNMP versions prior to SNMPv3 did not include adequate security. 

Even if the network itself is secure (for example by using IPSec), 
even then, there is no control as to who on the secure network is 
allowed to access and GET/SET (read/change/create/delete) the objects 
in this MIB module. 


It is RECOMMENDED that implementers consider the security features as 
provided by the SNMPv3 framework (see [RFC3410], section 8), 
including full support for the SNMPv3 cryptographic mechanisms (for 
authentication and privacy). 


Further, deployment of SNMP versions prior to SNMPv3 is NOT 
RECOMMENDED. Instead, it is RECOMMENDED to deploy SNMPv3 and to 
enable cryptographic security. It is then a customer/operator 
responsibility to ensure that the SNMP entity giving access to an 
instance of this MIB module is properly configured to give access to 
the objects only to those principals (users) that have legitimate 
rights to indeed GET or SET (change/create/delete) them. 


IANA Considerations 


sally IANA Considerations for CAPWAP-DOT11-MIB Module 


The MIB module in this document uses the following IANA-assigned 
OBJECT IDENTIFIER value recorded in the SMI Numbers registry: 


Descriptor OBJECT IDENTIFIER value 


capwapDot11MIB { mib-2 195 } 


.2. IANA Considerations for ifType 


IANA has assigned the following ifTypes: 


Decimal Name Description 

252 capwapDotllProfile WLAN Profile Interface 

253 capwapDot11Bss WLAN BSS Interface 
Contributors 


This MIB module is based on contributions from Long Gao. 
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